sssd.git/src/responder/secrets, branch sudo Unnamed repository; edit this file 'description' to name the repository. SECRETS: Support 0 as unlimited for the quotas 2017-09-01T18:27:01+00:00 Jakub Hrozek jhrozek@redhat.com 2017-06-07T15:20:43+00:00 109ed7ca1a82420798efdc6a9b019675a5bd0f4f Add a special value for all the quota-like settings that means 'no limit'. Because the responder also had a global limit on the size of the accepted body (64kiB), this patch also removes the hardcoded limit and instead keep track of the biggest quota value on startup. Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
Add a special value for all the quota-like settings that means 'no
limit'.

Because the responder also had a global limit on the size of the
accepted body (64kiB), this patch also removes the hardcoded limit and
instead keep track of the biggest quota value on startup.

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Add a new option to control per-UID limits 2017-09-01T18:26:45+00:00 Jakub Hrozek jhrozek@redhat.com 2017-06-05T14:10:55+00:00 6b3bab516355fdf4cc81e6da9d87ec3818ab190f Adds a new option max_uid_secrets that allows to set a limit of secrets for this particular client so that the user cannot starve other users. Resolves: https://pagure.io/SSSD/sssd/issue/3363 Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
Adds a new option max_uid_secrets that allows to set a limit of secrets
for this particular client so that the user cannot starve other users.

Resolves:
https://pagure.io/SSSD/sssd/issue/3363

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Use separate quotas for /kcm and /secrets hives 2017-09-01T18:26:23+00:00 Jakub Hrozek jhrozek@redhat.com 2017-04-04T13:33:38+00:00 197da163943868216f704fb34031e7d5576e8aee This would differentiate between out-of-capacity errors for secrets and for KCM as they are two independent trees as far as sssd-secrets is concerned. The quotas for /kcm are also different in their defaults. For the /secrets hive, we presume a large amount of small secrets. For the /kcm hive, we presume a small amount of large secrets, because the secret is a ccache which contains multiple credentials. The operations are also passed in a struct quota from the local request context instead of local_context. The quota is assigned to the request context when the hive is selected. Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
This would differentiate between out-of-capacity errors for secrets and
for KCM as they are two independent trees as far as sssd-secrets is
concerned.

The quotas for /kcm are also different in their defaults. For the /secrets
hive, we presume a large amount of small secrets. For the /kcm hive, we
presume a small amount of large secrets, because the secret is a ccache
which contains multiple credentials.

The operations are also passed in a struct quota from the local request
context instead of local_context. The quota is assigned to the request
context when the hive is selected.

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Rename local_db_req.basedn to local_db_req.req_dn 2017-09-01T18:26:14+00:00 Jakub Hrozek jhrozek@redhat.com 2017-04-04T12:45:30+00:00 392f48c039d7a6d70bce6ae2d122042391653566 This will make it possible to reuse the basedn name later for the "hive" base DN in order to differentiate quotas for different hives. There is no functional change in this patch. Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
This will make it possible to reuse the basedn name later for the "hive"
base DN in order to differentiate quotas for different hives.

There is no functional change in this patch.

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Read the quotas for cn=secrets from [secrets/secrets] configuration subsection 2017-09-01T18:26:04+00:00 Jakub Hrozek jhrozek@redhat.com 2017-05-30T10:51:19+00:00 4db56d8c90a6467a216590e5ba3bdcd2a2bf1ae9 This patch makes obsoletes the old way of configuring quotas for the secrets responder. Instead, adds a new way of configuring each hive separately in a configuration subsection, e.g. [secrets/secrets] max_secrets = 123 The old way is still supported as a backwards-compatible method. Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
This patch makes obsoletes the old way of configuring quotas for the
secrets responder. Instead, adds a new way of configuring each hive
separately in a configuration subsection, e.g.

[secrets/secrets]
max_secrets = 123

The old way is still supported as a backwards-compatible method.

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Store quotas in a per-hive configuration structure 2017-09-01T18:25:52+00:00 Jakub Hrozek jhrozek@redhat.com 2017-05-30T10:31:57+00:00 7a162ca3ea0bf8ef6b13795a00baa28d17f6131d Adds two new structures to hold the quotas and associate a quota with a hive. This is just an internal change for now, but will allow us to read quota configuration from per-hive sections later. Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
Adds two new structures to hold the quotas and associate a quota with a hive.

This is just an internal change for now, but will allow us to read quota
configuration from per-hive sections later.

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Do not link with c-ares 2017-09-01T18:25:37+00:00 Jakub Hrozek jhrozek@redhat.com 2017-06-05T13:19:13+00:00 9ef185255126b9ed415fa334f585a11c5be4fb1a Since we started using libcurl for the proxy provider, there is no point in initializing or linking against c-ares. If we want to explicitly use a resolver in the future, we should use libcurl callbacks. Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> 
Since we started using libcurl for the proxy provider, there is no point
in initializing or linking against c-ares.

If we want to explicitly use a resolver in the future, we should use
libcurl callbacks.

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
SECRETS: Remove unused declarations 2017-09-01T18:25:22+00:00 Jakub Hrozek jhrozek@redhat.com 2017-05-30T10:19:53+00:00 2d40ce078a9071ac23353848d0849fbbbd600049 Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> 
Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
UTIL: Remove fcntl.h from util/util.h 2017-06-08T15:09:36+00:00 Lukas Slebodnik lslebodn@redhat.com 2017-05-27T17:07:41+00:00 8890a30f5d054187fd7d5b50503f82a49cd025f0 fcntl.h is not used directly by util/util.h. The header file fcntl.h must be included in 49 files and after removing it from util.h it had to be added only to 7 missing file which were using either directly syscall fcntl or syscall open. Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
fcntl.h is not used directly by util/util.h. The header file fcntl.h
must be included in 49 files and after removing it from util.h it had to be
added only to 7 missing file which were using either directly syscall fcntl
or syscall open.

Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Fix warning Wpointer-bool-conversion 2017-05-31T13:21:29+00:00 Lukas Slebodnik lslebodn@redhat.com 2017-05-27T12:39:45+00:00 074ded4cda2ce88563a3e7e5cc0eea808d3322b3 Debug messages would always say that verify_peer and verify_host are enabled. Even though they would be explicitly disabled. src/responder/secrets/proxy.c:143:18: error: address of 'cfg->verify_peer' will always evaluate to 'true' [-Werror,-Wpointer-bool-conversion] (&cfg->verify_peer ? "true" : "false")); ~~~~~^~~~~~~~~~~ ~ src/util/debug.h:108:32: note: expanded from macro 'DEBUG' format, ##__VA_ARGS__); \ ^~~~~~~~~~~ src/responder/secrets/proxy.c:149:18: error: address of 'cfg->verify_host' will always evaluate to 'true' [-Werror,-Wpointer-bool-conversion] (&cfg->verify_host ? "true" : "false")); ~~~~~^~~~~~~~~~~ ~ src/util/debug.h:108:32: note: expanded from macro 'DEBUG' format, ##__VA_ARGS__); \ ^~~~~~~~~~~ Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> 
Debug messages would always say that verify_peer and verify_host
are enabled. Even though they would be explicitly disabled.

src/responder/secrets/proxy.c:143:18: error:
    address of 'cfg->verify_peer' will always evaluate to
      'true' [-Werror,-Wpointer-bool-conversion]
          (&cfg->verify_peer ? "true" : "false"));
            ~~~~~^~~~~~~~~~~ ~
src/util/debug.h:108:32: note: expanded from macro 'DEBUG'
                     format, ##__VA_ARGS__); \
                               ^~~~~~~~~~~
src/responder/secrets/proxy.c:149:18: error:
    address of 'cfg->verify_host' will always evaluate to
      'true' [-Werror,-Wpointer-bool-conversion]
          (&cfg->verify_host ? "true" : "false"));
            ~~~~~^~~~~~~~~~~ ~
src/util/debug.h:108:32: note: expanded from macro 'DEBUG'
                     format, ##__VA_ARGS__); \
                               ^~~~~~~~~~~

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>